Amazon AWS Certified Developer - Associate DVA-C02
Prev

There are 313 results

Next
#181 (Accuracy: 100% / 5 votes)
A developer is creating a mobile app that calls a backend service by using an Amazon API Gateway REST API. For integration testing during the development phase, the developer wants to simulate different backend responses without invoking the backend service.
Which solution will meet these requirements with the LEAST operational overhead?
  • A. Create an AWS Lambda function. Use API Gateway proxy integration to return constant HTTP responses.
  • B. Create an Amazon EC2 instance that serves the backend REST API by using an AWS CloudFormation template.
  • C. Customize the API Gateway stage to select a response type based on the request.
  • D. Use a request mapping template to select the mock integration response.
#182 (Accuracy: 94% / 6 votes)
A developer has an application that stores data in an Amazon S3 bucket. The application uses an HTTP API to store and retrieve objects. When the PutObject API operation adds objects to the S3 bucket the developer must encrypt these objects at rest by using server-side encryption with Amazon S3 managed keys (SSE-S3).
Which solution will meet this requirement?
  • A. Create an AWS Key Management Service (AWS KMS) key. Assign the KMS key to the S3 bucket.
  • B. Set the x-amz-server-side-encryption header when invoking the PutObject API operation.
  • C. Provide the encryption key in the HTTP header of every request.
  • D. Apply TLS to encrypt the traffic to the S3 bucket.
#183 (Accuracy: 100% / 5 votes)
A company built an online event platform. For each event, the company organizes quizzes and generates leaderboards that are based on the quiz scores. The company stores the leaderboard data in Amazon DynamoDB and retains the data for 30 days after an event is complete. The company then uses a scheduled job to delete the old leaderboard data.

The DynamoDB table is configured with a fixed write capacity. During the months when many events occur, the DynamoDB write API requests are throttled when the scheduled delete job runs.

A developer must create a long-term solution that deletes the old leaderboard data and optimizes write throughput.

Which solution meets these requirements?
  • A. Configure a TTL attribute for the leaderboard data.
  • B. Use DynamoDB Streams to schedule and delete the leaderboard data.
  • C. Use AWS Step Functions to schedule and delete the leaderboard data.
  • D. Set a higher write capacity when the scheduled delete job runs.
#184 (Accuracy: 100% / 2 votes)
A company has an internal website that contains sensitive data. The company wants to make the website public. The company must ensure that only employees who authenticate through the company's OpenID Connect (OIDC) identity provider (IdP) can access the website. A developer needs to implement authentication without editing the website.

Which combination of steps will meet these requirements? (Choose two.)
  • A. Create a public Network Load Balancer.
  • B. Create a public Application Load Balancer.
  • C. Configure a listener for the load balancer that listens on HTTPS port 443. Add a default authenticate action providing the OIDC IdP configuration.
  • D. Configure a listener for the load balancer that listens on HTTP port 80. Add a default authenticate action providing the OIDC IdP configuration.
  • E. Configure a listener for the load balancer that listens on HTTPS port 443. Add a default AWS Lambda action providing an Amazon Resource Name (ARN) to a Lambda authentication function.
#185 (Accuracy: 100% / 3 votes)
A developer needs temporary access to resources in a second account.

What is the MOST secure way to achieve this?
  • A. Use the Amazon Cognito user pools to get short-lived credentials for the second account.
  • B. Create a dedicated IAM access key for the second account, and send it by mail.
  • C. Create a cross-account access role, and use sts:AssumeRole API to get short-lived credentials.
  • D. Establish trust, and add an SSH key for the second account to the IAM user.
#186 (Accuracy: 93% / 4 votes)
A company uses an AWS Lambda function to call a third-party service. The third-party service has a limit of requests each minute. If the number of requests exceeds the limit, the third-party service returns rate-limiting errors.

A developer needs to configure the Lambda function to avoid receiving rate limiting errors from the third-party service.

Which solution will meet these requirements?
  • A. Set the reserved concurrency on the Lambda function to match the number of concurrent requests that the third-party service allows.
  • B. Decrease the memory that is allocated to the Lambda function.
  • C. Set the provisioned concurrency on the Lambda function to match the number of concurrent requests that the third-party service allows.
  • D. Increase the timeout value that is specified on the Lambda function.
#187 (Accuracy: 100% / 2 votes)
A gaming website gives users the ability to trade game items with each other on the platform. The platform requires both users' records to be updated and persisted in one transaction. If any update fails, the transaction must roll back.

Which AWS solutions can provide the transactional capability that is required for this feature? (Choose two.)
  • A. Amazon DynamoDB with operations made with the ConsistentRead parameter set to true
  • B. Amazon ElastiCache for Memcached with operations made within a transaction block
  • C. Amazon DynamoDB with reads and writes made by using Transact* operations
  • D. Amazon Aurora MySQL with operations made within a transaction block
  • E. Amazon Athena with operations made within a transaction block
#188 (Accuracy: 100% / 4 votes)
A developer has an application that asynchronously invokes an AWS Lambda function. The developer wants to store messages that resulted in failed invocations of the Lambda function so that the application can retry the call later.

What should the developer do to accomplish this goal with the LEAST operational overhead?
  • A. Set up Amazon CloudWatch Logs log groups to filter and store the messages in an Amazon S3 bucket. Import the messages in Lambda. Run the Lambda function again.
  • B. Configure Amazon EventBridge to send the messages to Amazon Simple Notification Service (Amazon SNS) to initiate the Lambda function again.
  • C. Implement a dead-letter queue for discarded messages. Set the dead-letter queue as an event source for the Lambda function.
  • D. Send Amazon EventBridge events to an Amazon Simple Queue Service (Amazon SQS) queue. Configure the Lambda function to pull messages from the SQS queue. Run the Lambda function again.
#189 (Accuracy: 100% / 4 votes)
A company is using Amazon API Gateway to invoke a new AWS Lambda function. The company has Lambda function versions in its PROD and DEV environments. In each environment, there is a Lambda function alias pointing to the corresponding Lambda function version. API Gateway has one stage that is configured to point at the PROD alias.

The company wants to configure API Gateway to enable the PROD and DEV Lambda function versions to be simultaneously and distinctly available.

Which solution will meet these requirements?
  • A. Enable a Lambda authorizer for the Lambda function alias in API Gateway. Republish PROD and create a new stage for DEV. Create API Gateway stage variables for the PROD and DEV stages. Point each stage variable to the PROD Lambda authorizer to the DEV Lambda authorizer.
  • B. Set up a gateway response in API Gateway for the Lambda function alias. Republish PROD and create a new stage for DEV. Create gateway responses in API Gateway for PROD and DEV Lambda aliases.
  • C. Use an environment variable for the Lambda function alias in API Gateway. Republish PROD and create a new stage for development. Create API gateway environment variables for PROD and DEV stages. Point each stage variable to the PROD Lambda function alias to the DEV Lambda function alias.
  • D. Use an API Gateway stage variable to configure the Lambda function alias. Republish PROD and create a new stage for development. Create API Gateway stage variables for PROD and DEV stages. Point each stage variable to the PROD Lambda function alias and to the DEV Lambda function alias.
#190 (Accuracy: 100% / 4 votes)
A developer is building a containerized application on AWS. The application communicates with a third-party service by using API keys. The developer needs a secure way to store the API keys and pass the API keys to the containerized application.

Which solutions will meet these requirements? (Choose two.)
  • A. Store the API keys as a SecureString parameter in AWS Systems Manager Parameter Store. Grant the application access to retrieve the value from Parameter Store.
  • B. Store the API keys in AWS CloudFormation templates by using base64 encoding. Pass the API keys to the application through container definition environment variables.
  • C. Add a new AWS CloudFormation parameter to the CloudFormation template. Pass the API keys to the application by using the container definition environment variables.
  • D. Embed the API keys in the application. Build the container image on-premises. Upload the container image to Amazon Elastic Container Registry (Amazon ECR).
  • E. Store the API keys as a SecretString parameter in AWS Secrets Manager. Grant the application access to retrieve the value from Secrets Manager.